[strongSwan] Multiple Host-to-Host machines
ben.lavender at virtualdcs.co.uk
Wed Nov 8 13:08:36 CET 2017
Thanks Christian, this worked for us.
From: Users [mailto:users-bounces at lists.strongswan.org] On Behalf Of Christian Huldt
Sent: 07 November 2017 19:08
To: users at lists.strongswan.org
Subject: Re: [strongSwan] Multiple Host-to-Host machines
You may use a wildcard (*) as in this:
rightid="C=SE, O=OurDomain, OU=rogue, CN=*"
Den 2017-11-07 kl. 13:48, skrev Ben Lavender:
> Hello, we have recently setup a host-to-host connection using IKE1
> with strongSwan on Linux and Windows using certificate authentication.
> We also have a requirement to add multiple other windows hosts to the
> configuration on strongSwan. We originally setup the conn with the
> rightID parameter set to the certificate DN of the Windows machines
> which worked fine. However we want to add a number of Windows hosts
> that use the same PKI. As we understand the left|rightID parameter is
> a single string parameter only, what would the best way of adding in
> this config? I understand the OID can be added or is it viable to add
> in multiple conn settings for each host and specify the DN?
Virtual Data Centre Services (virtualDCS) is registered in England and Wales under company number 07238621; registered address: The Waterscape, 42 Leeds and Bradford Road, LS5 3EG. This e-mail and any attachments are strictly confidential and intended for the addressee only. If you are not the named addressee you must not disclose, copy, or take any action in reliance of this transmission, and you should notify us as soon as possible. Any views or opinions expressed are solely those of the author and do not necessarily represent those of virtualDCS. This e-mail and any attachments are believed to be free from viruses but it is your responsibility to carry out all necessary virus checks, and virtualDCS accepts no liability in connection therewith.
More information about the Users